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Amendments to the Claims: 



This listing of claims will replace all prior versions, and listings, of claims in the application 



Listing of ^Claims: 

1, (Currently amended) A method of managing! assertions comprising the steps of; 

selling a pool of unallocated timcj available for assertions : 

upon request, generating an assertion between a name and a public key f the 

i 

assertion having a lifetime, during which the assertion is usable to provide an indication that the 
public key is associated with the name, and subtracting the lifetime from the unallocated time; 

and I 

i 

upon request, revoking an assertion and adding any remaining lifetime of the 
assertion to the unallocated time. j 

2. (Original) The method of claim 1 comprising the further step of eroding unallocated time 
overtime. ! 



3. (Currently amended) A computer implemented system for managing assertions between 
names and public keys, the system comprising: j 

a repository containing an unallocated time, the unallocated time indicating an 
amount of time available for assertions; 

a client interface; 

a purchase component operativclyj coupled to the client interface and to the 
repository, and adapted to add a bulk lifetime requested through the client interface to the 
unallocated time; 

a request component operatively coupled to the client interface and to the 



repository, and adapted to, upon generation of an. 



assertion between anamc and a public key, the 



2 

i 
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assertion having a lifetime requested through the client interface, deduct the requested lifetime 

from the unallocated time; and i 

! 

a revocation component operativcly coupled to the client interface and to the 
repository and adapted to, upon revocation of an! assertion having a remaining lifetime, add the 
remaining lifetime to the unallocated time^ 

wherein at least one of the repository, the client, interface, the purchase 
component, the request component, and the revocation component comprises a hardware 
component. • ! 

i . 

4. (Original) The system of claim 3 wherein each assertion is a public key certificate. 

5. (Original) The system of claim 3 further adapted to: 

i 

monitor when the unallocated time falls below a threshold, and 

notify a user associated with the unallocated time if the unallocated time falls 

I 

below the threshold. 

6. (Previously Presented) The system of claim 3 wherein the request component determines 
whether the requested lifetime is greater than the; unallocated time, and if the requested lifetime is 
greater than the unallocated time, presents a useij associated with the unallocated time with a set 
of options for remedying the insufficiency of the! unallocated time. 

7. (Currently amended) A processing platform implemented method o ^ proo ess i n g - a - rcqucst for 

i 

an ass e rtion between a nam e and a public k e y, th e m e thod comprising the computer implemented 
steps of: j 

maintaining an unallocated time, the unallocated time being time available for 
assertions between a name and a public key : 

accepting a request for an assertion between a name and a public key and a 
requested lifetime during which the assertion is usable to provide an indication that the public 

key is associated with the name; j 

! 

| 

i 

I 
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i 
j 

determining whether the unallocated time is greater than or equal to the requested 

lifetime; and 

i 

upon determining that the unallocated time is greater than or equal to the 
requested lifetime, deducting the requested lifetime from the unallocated time. 

8. (Currently Amended) The method of claim 7 comprising the further step of forwarding the 
request for an assertion to an entity responsible for generating assertions where the unallocated 

time is greater than or equal to the requested lifetime . 

i 

9. (Original) The method of claim 7 wherein the assertion is a public key certificate. 

10. (Original) The method of claim 7 comprising the further step of eroding the unallocated 
time over time. i 

i 

! 

1 1 . (Currently amended) A processing platformj implemented method coproc e ssing a r e qu e st 



for r e vocation of an - assertion between nnam o and o public key, the - mct hod comprising the 
computer implemented steps of: 

maintaining an unallocated time, tjhe unallocated time being time available for 
assertions , between a name and a public key : 

identifying ^ from a request for revbeation. an assertion between a name and a 



public key to be revoked, the assertion having a remaining lifetime during which the assertion is 
usable to provide an indication that the public key is associated with the name; and 

adding the remaining lifetime to tfie unallocated time. 

12. (Original) The method of claim 1 1 wherein the assertion is a public key certificate. 

13. (Cancelled) 

| 

14. (Currently Amended) An article of manufacture comprising a computer-readable storage 
medium, the computer-readable storage medium containing instructions for: 

generating an entry in a repository] the entry including an unallocated time 
available for assertions : 

i 
! 

4 
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receiving a request for a purchase of bulk lifetime; 

adding the bulk lifetime to the unallocated time in the event that a request for a 
purchase of bulk lifetime is received; 

receiving a request for an assertion and a requested lifetime, the assertion being 
between a name and a public key; 

deducting the requested lifetime from the unallocated time in the event that a 
request for an assertion is received; j 

! 

receiving an identification of an assertion to be revoked, the assertion having a 
remaining lifetime; and 

adding the remaining lifetime to the unallocated time in the event that an 

i 

identification of an assertion to be revoked is received. 

i 

15. (Currently amended) A computer implemented system for allocating assertions comprising: 
means for allocating a pool of unallocated time available for assertion validity; 
a client interface; ! 

means for processing a request received through the client interface for an 
assertion between a name and a public key, the assertion having a lifetime, the means for 
processing the request being operatively coupled jto the client interface and to the means for 
allocating, and subtracting the lifetime from the unallocated time; and 

means for processing a revocation |of an existing assertion, the means for 
processing the revocation being operatively coupled to the means for allocating, and determining 
any remaining lifetime of the existing assertion and adding at least a portion of the remaining 

lifetime of the assertion to the unallocated time[Yj! 

I 



5 
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wherein at least one of the means for allocating, the client interface, the means for 
processing a request, and the means for processing a revocation comprises a hardware 
component 

16. (Previously Presented) The system of claim! 15 further comprising: 

means for monitoring when the unallocated time falls below a threshold, and for 
notifying a user associated with the unallocated tame if the unallocated time falls heJow the 
threshold. 

17. (Currently Amended) A computer readable medium having instructions stored thereon for 
execution on a processing platform to execute a method comprising: 

selling a pool of unallocated time jayajlable for assertions : 

upon request, generating an assertion between a name and a public key, the 
assertion having a lifetime and subtracting toe lifetime from the unallocated time; and 

upon request, revoking an assertion and adding any remaining lifetime of the 
assertion to the unallocated time. 

18. (Previously presented) A computer readable j medium according to claim 17 wherein the 
instructions for execution further comprise: 

eroding unallocated time over time. 

19. (Previously presented) A computer readablejmediurn having instructions stored thereon for 
execution on a processing platform to execute the method of claim 7. 

20. (Previously presented) A computer readable medium having instructions stored thereon for 
execution on a processing platform to execute the method of claim 9. 

2 1 . (Previously presented) A computer readable {medium having instructions stored thereon for 
execution on a processing platform to execute thej method of claim 10. 
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